Configure Password Policy for Local Users

<

The local user password policy is a set of rules and restrictions on the format and expiration of the local user passwords. The password policy applies only to local users that you created from the VMware Identity Manager admin console.

About this task

The password policy can include password restrictions, a maximum lifetime of a password, and for password resets, the maximum lifetime of the temporary password.

The default password policy requires six characters. The password restrictions can include a combination of uppercase, lowercase, numerical, and special characters to require strong passwords be set.

Procedure

In the administration console, select Users & Groups > Settings

Click Password Policy to edit the password restriction parameters.

Option

Description

Minimum length for passwords

Six characters is the minimum length, but you can require more than six characters. The minimum length must be no less than the combined minimum of alphabetic, numeric, and special character requirements.

Lowercase characters

Minimum number of lowercase characters. Lowercase a-z

Uppercase characters

Minimum number of uppercase characters. Uppercase A-Z

Numerical characters (0-9)

Minimum number of numerical characters. Base ten digits (0-9)

Special characters

Minimum number of non-alphanumeric characters, for example & # % $ !

Consecutive identical characters

Maximum number of identical adjacent characters. For example, if you enter 1, the following password is allowed: p@s$word, but this password is not allowed: p@$$word.

Password history

Number of the previous passwords that cannot be selected. For example, if a user cannot reuse any of the last six passwords, type 6. To disable this feature, set the value to 0.

In the Password Management section, edit the password lifetime parameters.

Option

Description

Temporary password lifetime

Number of hours a password reset or forgot password link is valid. The default is 168 hours

Password lifetime

Maximum number of days that a password can exist before the user must change it.

Password reminder

Number of days before a password expiration that the password expiry notice is sent.

Password reminder notification frequency

After the first password expiry notice is sent, how frequently reminders are sent.

Each box must have a value to set up the password lifetime policy. To not set a policy option, enter 0.